SPF

SPF compliance indicator :


On the home page of your administration console, you will find a real-time indicator of the domain's DNS information.

The following are different audit reports:


SPF compliant according to the recommendation

SPF not compliant (problem in syntax)

The recommended SPF line is not registered


The SPF record is a line that you should add to your DNS server to prevent spoofing of your mail servers.

Receiving servers examine the SPF record to ensure and verify that the server responsible for sending the emails has been authorised to do so by the sending domain. This reduces the risk of your domain being used for SPAM.

Here is the information you need to add to your registrar (Gandi, 1&1, OVH ...) in order to create the TXT field of the domain "your-domain-name.com" your-domain-name.com is a domain name that we will use as an example.

Your-name-domain.com 10800 IN TXT "v=spf1 include:includespf.security-mail.net -all"

Please see an example of an SPF field record and DNS MX entries from one of our customers:

@ 10800 IN MX 10 europe.security-mail.net.

@ 10800 IN MX 50 france.security-mail.net.

@ 10800 IN TXT "v=spf1 include:includespf.security-mail.net -all"

To check that the registration has been successful, run the following command in your terminal:

nslookup -type=txt your-name-domain.com

The output of the command should contain the following line: your-name-domain.com text = "v=spf1 include:includespf.security-mail.net -all"

Note: With this configuration, only the mail servers of the domain "security-mail.net" will be able to send emails from the domain "your-name-domain.com".

The all field can have 3 values:

-all Strictly does not allow any shipment other than by one of the listed elements

- ~all Considers mailings from other servers as potentially illegitimate

- ?all Indicates that there are additional servers that can send  

Tags